Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: kitty 2025-2fe21e3da5 Security Advisory Updates

fedora
Calendar Grey March 22, 2025
Dist Fedora Esm H88
Update to Kitty 0.40.0 in Fedora 40 addresses critical HTTP Proxy bypass issue. Immediate action recommended.
Update to 0.40.0 https://sw.kovidgoyal.net/kitty/changelog/#detailed-list-of-changes

Summary

- Offloads rendering to the GPU for lower system load and buttery smooth

scrolling. Uses threaded rendering to minimize input latency.

- Supports all modern terminal features: graphics (images), unicode, true-color,

OpenType ligatures, mouse protocol, focus tracking, bracketed paste and

several new terminal protocol extensions.

- Supports tiling multiple terminal windows side by side in different layouts

without needing to use an extra program like tmux.

- Can be controlled from scripts or the shell prompt, even over SSH.

- Has a framework for Kittens, small terminal programs that can be used to

extend kitty's functionality. For example, they are used for Unicode input,

Hints and Side-by-side diff.

- Supports startup sessions which allow you to specify the window/tab layout,

working directories and programs to run on startup.

- Cross-platform: kitty works on Linux and macOS, but because it uses only

OpenGL for rendering, it should be trivial to port to other Unix-like

platforms.

- Allows you to open the scrollback buffer in a separate window using arbitrary

programs of your choice. This is useful for browsing the history comfortably

in a pager or editor.

- Has multiple copy/paste buffers, like vim.

Update Information:

Update to 0.40.0 https://sw.kovidgoyal.net/kitty/changelog/#detailed-list-of-changes

Topics%20covered

Topics Covered

security advisory update Fedora threat patch kitty

Change Log

* Sat Mar 8 2025 Pavel Solovev - 0.40.0-1 - Update to 0.40.0

References


[ 1 ] Bug #2352088 - CVE-2025-22870 kitty: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2352088

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-2fe21e3da5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: kitty
Product: Fedora 40
Version: 0.40.0
Release: 2.fc40
URL: https://sw.kovidgoyal.net/kitty
Summary: Cross-platform, fast, feature full, GPU based terminal emulator

Topics%20covered

Topics Covered

security advisory update Fedora threat patch kitty

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here